Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/BWmiZFOBSKWeDLwbI1B5tEd4LKc.roa
File: BWmiZFOBSKWeDLwbI1B5tEd4LKc.roa (raw, json)
Hash identifier: ZHjlXZm/efWnG7xX9nrHIt43ajAYVYuCL5ad/SIh7Og=
Subject key identifier: 05:69:A2:64:53:81:48:A5:9E:0C:BC:1B:23:50:79:B4:47:78:2C:A7
Certificate issuer: /CN=296593b747e76a56492511bb3612e4d5e4cbe7ec
Certificate serial: 01856E01C4C360983DE9701ED91FE7FCFD0F
Authority key identifier: 29:65:93:B7:47:E7:6A:56:49:25:11:BB:36:12:E4:D5:E4:CB:E7:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KWWTt0fnalZJJRG7NhLk1eTL5-w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/BWmiZFOBSKWeDLwbI1B5tEd4LKc.roa
Signing time: Sun 01 Jan 2023 15:44:47 +0000
ROA not before: Sun 01 Jan 2023 15:44:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62294
IP address blocks: 176.100.34.0/24 maxlen: 24
37.114.57.0/24 maxlen: 24
2a00:ccc5::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:01:c4:c3:60:98:3d:e9:70:1e:d9:1f:e7:fc:fd:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=296593b747e76a56492511bb3612e4d5e4cbe7ec
Validity
Not Before: Jan 1 15:44:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0569a264538148a59e0cbc1b235079b447782ca7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:0c:e5:6f:9f:d5:92:af:1e:0d:b1:59:53:28:
ca:02:fa:58:53:62:d4:50:49:d6:ec:4d:7a:6f:b4:
f5:6b:99:14:40:e7:af:1b:28:5a:17:02:c3:2c:7b:
a2:f0:e2:58:bf:0c:82:ed:c2:ae:a2:6a:74:0f:3f:
7a:0b:38:29:f5:c9:8a:19:2c:51:27:d8:32:d3:3b:
28:7c:12:86:22:e8:1a:a2:10:80:6b:f1:c3:0c:84:
6b:69:64:ef:01:3d:2e:a4:fb:ce:22:51:68:8b:fa:
a9:2e:b1:87:0b:79:fe:9a:7a:bb:0a:80:ce:9c:98:
d6:5d:7c:cd:91:ab:7c:ca:61:50:8f:5c:b3:cd:fd:
8c:cd:8b:fe:01:60:ee:fc:1c:4d:ef:31:7b:c4:31:
60:7c:44:fd:42:a1:9c:3e:44:a3:e7:86:c3:99:a0:
3f:f8:17:6c:79:1a:95:eb:00:80:93:88:1a:76:c4:
74:bd:2e:b1:96:91:d1:7f:09:1e:cf:19:93:e4:32:
d0:53:ef:eb:d8:27:dc:f8:df:c7:34:ce:58:5e:f9:
c6:32:2e:f9:0e:90:4f:b2:91:19:14:5e:02:15:4a:
f0:2f:22:e2:a1:df:05:26:17:91:82:8c:37:4b:e6:
7d:58:c2:dd:28:0f:15:90:e2:bd:d4:40:fd:79:ad:
7b:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:69:A2:64:53:81:48:A5:9E:0C:BC:1B:23:50:79:B4:47:78:2C:A7
X509v3 Authority Key Identifier:
keyid:29:65:93:B7:47:E7:6A:56:49:25:11:BB:36:12:E4:D5:E4:CB:E7:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KWWTt0fnalZJJRG7NhLk1eTL5-w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/BWmiZFOBSKWeDLwbI1B5tEd4LKc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/KWWTt0fnalZJJRG7NhLk1eTL5-w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.114.57.0/24
176.100.34.0/24
IPv6:
2a00:ccc5::/32
Signature Algorithm: sha256WithRSAEncryption
8c:fa:8d:2c:be:f9:bf:eb:06:70:73:f5:f3:69:13:26:21:e4:
11:19:6e:6d:f5:20:19:ca:a1:4b:07:40:9d:5d:d2:35:69:f5:
d9:a8:13:88:44:16:29:8c:33:bb:fe:38:07:9c:2f:bb:5c:2f:
2c:cf:c3:4c:b1:3a:14:57:01:9d:4a:7f:21:66:c6:e5:61:86:
5d:b1:5c:63:89:80:8d:bf:42:a0:06:75:bc:c2:c4:9b:c6:47:
8d:97:a7:f6:68:41:e0:ed:d5:2e:ae:78:96:ce:0e:23:80:b6:
b3:76:47:5d:7e:2a:9a:ad:14:46:e4:7e:54:95:13:81:8f:be:
16:35:84:dd:66:40:12:b2:f5:67:0a:5d:c6:8d:a6:b1:8a:86:
e5:fd:21:d8:ca:83:ec:42:05:f2:e4:4e:6f:e6:66:73:eb:43:
95:c5:63:0e:34:58:6a:cd:01:a6:78:bf:d7:12:82:bf:87:25:
cf:84:08:b0:73:57:54:62:b6:9f:41:a8:b4:85:9f:75:c4:b0:
70:0f:ac:d5:e1:e5:26:1e:eb:8d:09:97:9f:a9:48:1f:7c:9a:
b7:09:2b:75:ae:f6:bc:16:e7:73:2f:a7:53:50:4f:02:79:b8:
8a:6d:f5:07:99:10:0a:2e:9b:34:82:8a:25:5e:2d:b3:99:5c:
99:fd:23:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:57 2024 by rpki-client on console-fra.rpki-client.org